44 lines
1.5 KiB
YAML
44 lines
1.5 KiB
YAML
name: SonarQube Scan
|
|
on:
|
|
workflow_call:
|
|
jobs:
|
|
sonarqube:
|
|
name: SonarQube Trigger
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- name: Checking out
|
|
uses: actions/checkout@v4
|
|
with:
|
|
# Disabling shallow clone is recommended for improving relevancy of reporting
|
|
fetch-depth: 0
|
|
|
|
- name: Setup java runtime
|
|
uses: actions/setup-java@v4
|
|
with:
|
|
distribution: 'zulu'
|
|
java-version: '21'
|
|
|
|
- name: Run gradle build process
|
|
run: |
|
|
./gradlew build
|
|
|
|
- name: SonarQube Scan
|
|
uses: sonarsource/sonarqube-scan-action@master # Ex: v2.1.0, See the latest version at https://github.com/marketplace/actions/official-sonarqube-scan
|
|
env:
|
|
SONAR_TOKEN: ${{ secrets.SONARQUBE_TOKEN }}
|
|
SONAR_HOST_URL: ${{ secrets.SONARQUBE_HOST }}
|
|
|
|
# Check the Quality Gate status.
|
|
- name: SonarQube Quality Gate check
|
|
id: sonarqube-quality-gate-check
|
|
uses: sonarsource/sonarqube-quality-gate-action@master
|
|
# Force to fail step after specific time.
|
|
timeout-minutes: 5
|
|
env:
|
|
SONAR_TOKEN: ${{ secrets.SONARQUBE_TOKEN }}
|
|
SONAR_HOST_URL: ${{ secrets.SONARQUBE_HOST }}
|
|
|
|
# Optionally you can use the output from the Quality Gate in another step.
|
|
# The possible outputs of the `quality-gate-status` variable are `PASSED`, `WARN` or `FAILED`.
|
|
- name: "Example show SonarQube Quality Gate Status value"
|
|
run: echo "The Quality Gate status is ${{ steps.sonarqube-quality-gate-check.outputs.quality-gate-status }}" |